CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A race condition was addressed with additional validation. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, tvOS 17.6, watchOS 10.6. A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication...

7.5CVSS5.9AI score0.07151EPSS

Exploits0References1

RedhatCVE•added 2025/03/23 12:24 a.m.•20 views

CVE-2024-54564

This issue was addressed through improved state management. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, visionOS 1.3. A file received from AirDrop may not have the quarantine flag applied...

6.5CVSS5.8AI score0.00154EPSS

Exploits0References1

OSV•added 2025/03/21 12:15 a.m.•1 views

CVE-2024-54564

This issue was addressed through improved state management. This issue is fixed in visionOS 1.3, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6. A file received from AirDrop may not have the quarantine flag applied...

6.5CVSS5.8AI score0.00154EPSS

Exploits0References3

NVD•added 2025/03/21 12:15 a.m.•10 views

CVE-2024-54564

6.5CVSS0.00154EPSS

Exploits0References3

Vulnrichment•added 2025/03/20 11:53 p.m.•8 views

CVE-2024-54564

5.6AI score0.00154EPSS

Exploits0References3

CVE•added 2025/03/20 11:53 p.m.•58 views

CVE-2024-54564

The CVE-2024-54564 issue concerns Apple platforms, where a file received over AirDrop may not have the quarantine flag applied due to an improved state-management approach. This affects visionOS 1.3, macOS Sonoma 14.6, iOS 17.6, and iPadOS 17.6, where the quarantine handling was addressed and fix...

6.5CVSS5.8AI score0.00154EPSS

Exploits0References3Affected Software4

Vulnrichment•added 2025/03/20 11:53 p.m.•4 views

CVE-2024-54551

The issue was addressed with improved memory handling. This issue is fixed in watchOS 10.6, tvOS 17.6, Safari 17.6, macOS Sonoma 14.6, visionOS 1.3, iOS 17.6 and iPadOS 17.6. Processing web content may lead to a denial-of-service...

6.6AI score0.00197EPSS

Exploits0References6

NVD•added 2024/07/29 11:15 p.m.•21 views

CVE-2024-40835

A logic issue was addressed with improved checks. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, watchOS 10.6. A shortcut may be able to use sensitive data with certain actions without prompting the us...

5.5CVSS0.00046EPSS

Exploits0References24

OSV•added 2024/07/29 11:15 p.m.•0 views

CVE-2024-40815

A race condition was addressed with additional validation. This issue is fixed in macOS Ventura 13.6.8, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, macOS Sonoma 14.6. A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication...

7.5CVSS5.8AI score

Exploits0References15

NVD•added 2024/07/29 11:15 p.m.•22 views

CVE-2024-40812

A logic issue was addressed with improved checks. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, visionOS 1.3, watchOS 10.6. A shortcut may be able to bypass Internet permission requirements...

7.8CVSS0.0003EPSS

Exploits0References28

NVD•added 2024/07/29 11:15 p.m.•18 views

CVE-2024-40815

7.5CVSS0.07151EPSS

Exploits0References20

OSV•added 2024/07/29 11:15 p.m.•0 views

CVE-2024-40813

A lock screen issue was addressed with improved state management. This issue is fixed in watchOS 10.6, iOS 17.6 and iPadOS 17.6. An attacker with physical access may be able to use Siri to access sensitive user data...

4.6CVSS5.7AI score

Exploits0References6

NVD•added 2024/07/29 11:15 p.m.•18 views

CVE-2024-40818

This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, watchOS 10.6. An attacker with physical access may be able to use Siri to access sensitive user data...

4.6CVSS0.00107EPSS

Exploits0References20

NVD•added 2024/07/29 11:15 p.m.•21 views

CVE-2024-40794

This issue was addressed through improved state management. This issue is fixed in Safari 17.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. Private Browsing tabs may be accessed without authentication...

5.3CVSS0.00515EPSS

Exploits0References13

NVD•added 2024/07/29 11:15 p.m.•13 views

CVE-2024-40787

This issue was addressed by adding an additional prompt for user consent. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, watchOS 10.6. A shortcut may be able to bypass Internet permission requirements...

7.1CVSS0.00029EPSS

Exploits0References20

OSV•added 2024/07/29 11:15 p.m.•0 views

CVE-2024-40787

This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, macOS Sonoma 14.6. A shortcut may be able to bypass Internet permission requirements...

7.1CVSS5.7AI score0.00029EPSS

Exploits0References15

NVD•added 2024/07/29 11:15 p.m.•21 views

CVE-2024-40784

An integer overflow was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing a maliciously crafted file may lead to unexpected app...

7.8CVSS0.00031EPSS

Exploits0References28

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by